OSV-2026-620

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libxaac/OSV-2026-620.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2026-620
Published
2026-04-25T00:10:27.684147Z
Modified
2026-04-25T00:10:27.684523Z
Summary
Heap-buffer-overflow in ixheaace_process
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=505674302

Crash type: Heap-buffer-overflow WRITE {*}
Crash state:
ixheaace_process
xaac_enc_fuzzer.cpp
References

Affected packages

OSS-Fuzz / libxaac

Package

Name
libxaac
Purl
pkg:generic/libxaac

Affected ranges

Type
GIT
Repo
https://github.com/ittiam-systems/libxaac.git
Events
Introduced
fb6a68848a05401a1aba5747d29595cd344faa40
Fixed
9428b5860dd83dbd2c5b5cc5bf3915abfefbad21

Affected versions

v0.*
v0.1.13

Ecosystem specific 

{
    "severity": "HIGH"
}

Database specific

introduced_range 
"388435c8f8f43fe0e44bf0d31dd3965283f119ec:eb62778aee21a98b9f6f5c27e0a1f2546a175172"
source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/libxaac/OSV-2026-620.yaml"